BoltClicker[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

BoltClicker.exe
Size

4.0MB
MD5

4ecc02494dc66163b060cf35c35c7498
SHA1

154a7bea0294028ffd04ee911b5dcec5afd49c08
SHA256

de6e93a02726d471e11bb5790b08ef48beb2fd25d3851297bbb4d40d3d614170
SHA512

9ce8c14ae9bd762a30c91552f73c1842fbf1e39cde81f82ed651a5c537dd990faf4af0ad8d170eb078879756d26a27dafa5096345414f8baf82c5b4cbbfab1af
SSDEEP

49152:2SScEQMQsjsg6EWes1Z9Y4qCOU3v7RLbzOjN5k:2F96TglWJ1ZG4qy/7Zi

Score

1^/10

Malware Config

Signatures

Files

BoltClicker.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

78:96:d7:99:a0:3c:cd:ae:42:e1:82:7b:c6:35:11:61
Certificate

Issuer

CN=DESKTOP-4JGHLN7\\PickLeft

Not Before

05/02/2022, 02:20

Not After

05/02/2023, 08:20

Subject

CN=DESKTOP-4JGHLN7\\PickLeft

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

72:76:ef:3b:c6:eb:6d:89:83:45:2c:5f:0d:47:6c:e3:f4:00:93:74:cc:97:63:d0:d1:ec:6e:e0:2b:d8:87:b4
Signer

Actual PE Digest

72:76:ef:3b:c6:eb:6d:89:83:45:2c:5f:0d:47:6c:e3:f4:00:93:74:cc:97:63:d0:d1:ec:6e:e0:2b:d8:87:b4

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=DESKTOP-4JGHLN7\\PickLeft

03/03/2022, 18:39
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

78:96:d7:99:a0:3c:cd:ae:42:e1:82:7b:c6:35:11:61Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

72:76:ef:3b:c6:eb:6d:89:83:45:2c:5f:0d:47:6c:e3:f4:00:93:74:cc:97:63:d0:d1:ec:6e:e0:2b:d8:87:b4Signer

Signature Validations

Verification

03/03/2022, 18:39 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 4.0MB - Virtual size: 4.0MB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 12B

78:96:d7:99:a0:3c:cd:ae:42:e1:82:7b:c6:35:11:61
Certificate

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

72:76:ef:3b:c6:eb:6d:89:83:45:2c:5f:0d:47:6c:e3:f4:00:93:74:cc:97:63:d0:d1:ec:6e:e0:2b:d8:87:b4
Signer

03/03/2022, 18:39
Valid: false

.text
Size: 4.0MB - Virtual size: 4.0MB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 12B